Source URL: https://www.theregister.com/2025/03/31/oracle_reported_breaches/
Source: The Register
Title: Oracle Cloud security SNAFU: IT giant accused of pedantry as evidence vanishes
Feedly Summary: 1990s incident response in 2025
Two Oracle data security breaches have been reported in the past week, and the database goliath not only remains reluctant to acknowledge the disasters publicly – it may be scrubbing the web of evidence, too.…
AI Summary and Description: Yes
Summary: The text details two significant security breaches involving Oracle Cloud, highlighting claims of unauthorized access to sensitive data and Oracle’s attempts to downplay the incidents. It reveals the implications for customer trust and security practices, especially regarding unpatched vulnerabilities.
Detailed Description:
The article discusses two security incidents reported concerning Oracle Cloud, indicating potential vulnerabilities that have led to unauthorized access to customer data. Here are the major points noted in the text:
– **Incident Overview**:
– Claims of a breach led by a netizen known as rose87168, who reportedly accessed Oracle’s login systems for cloud customers, obtaining around six million records, including encrypted passwords and security certificates.
– Oracle denied any breaches, asserting that no customer data was compromised.
– **Evidence of the Breach**:
– The netizen provided a 10,000-line data sample that supposedly contained legitimate customer data hosted by Oracle.
– Security expert Alon Gal verified the data’s authenticity with affected companies.
– **Compromised Vulnerability**:
– The breaches were allegedly facilitated by exploiting CVE-2021-35587, a vulnerability related to Oracle Access Manager.
– Despite updates provided by Oracle in early 2022, the vulnerability remained unpatched in its production systems, allowing attackers to infiltrate the system.
– **Data Compromise in Healthcare**:
– Oracle communicated to healthcare customers about a separate incident where patient data may have been accessed using stolen credentials.
– **Ongoing Investigations**:
– The FBI has launched an investigation into these breaches.
– **Public and Expert Reactions**:
– Security experts criticized Oracle for not adequately addressing the breaches, with suggestions that the company engages in semantics to evade accountability.
– Experts also noted suspicions regarding Oracle’s attempts to remove evidence from the web to avoid further scrutiny.
– **Call for Transparency**:
– Experts stressed the importance for Oracle to clearly and comprehensively communicate the events surrounding the breaches to restore customer trust.
– **Technical Gaps**:
– The incidents underscore critical lapses in security management around unaddressed vulnerabilities and inadequate incident response.
The discussion highlights not only the technical failures associated with the breaches but also the profound implications for customer trust, organizational transparency, and compliance with security regulations in cloud services. Security professionals must take note of Oracle’s handling of vulnerabilities and communications, emphasizing the necessity of accountability and the potential repercussions of negligence in security practices.